Al-Sinani, Haitham and Mitchell, Chris J (2011) Client-based CardSpace-Shibboleth Interoperation.
Full text access: Open
Whilst the growing number of identity management systems have the potential to reduce the threat of identity attacks, major deployment problems remain because of the lack of interoperability between such systems. In this paper we propose a simple, novel scheme to provide interoperability between two of the most widely discussed identity systems, namely CardSpace and Shibboleth. In this scheme, CardSpace users are able to obtain an assertion token from a Shibboleth-enabled identity provider that can be processed by a CardSpace-enabled relying party. We specify the operation of the scheme and also describe an implementation of a proof-of-concept prototype. Additionally, security and operational analyses are provided.
This is a Submitted version This version's date is: 24/5/2011 This item is not peer reviewed
https://repository.royalholloway.ac.uk/items/957b8a8a-c673-f464-147e-6012932d13f1/7/
Deposited by Research Information System (atira) on 03-Jul-2014 in Royal Holloway Research Online.Last modified on 03-Jul-2014